Lucene search
GoogleOSV:CVE-2018-13054HistoryJul 02, 2018 - 2:29 p.m.
CVE-2018-13054
2018-07-0214:29:00
Google
osv.dev
4
An issue was discovered in Cinnamon 1.9.2 through 3.8.6. The cinnamon-settings-users.py GUI runs as root and allows configuration of (for example) other users’ icon files in _on_face_browse_menuitem_activated and _on_face_menuitem_activated. These icon files are written to the respective user’s $HOME/.face location. If an unprivileged user prepares a symlink pointing to an arbitrary location, then this location will be overwritten with the icon content.
Related
openvas
openvas
openSUSE: Security Advisory for cinnamon (openSUSE-SU-2018:2121-1)
2018-10-26 00:00:00
openSUSE: Security Advisory for cinnamon (openSUSE-SU-2018:2125-1)
2018-07-29 00:00:00
Ubuntu: Security Advisory (USN-4844-1)
2023-01-27 00:00:00
mageia
mageia
Updated cinnamon packages fix security vulnerability
2019-02-13 14:08:25
cvelist
cvelist
CVE-2018-13054
2018-07-02 14:00:00
nvd
nvd
CVE-2018-13054
2018-07-02 14:29:00
debian
debian
[SECURITY] [DLA-1420-1] cinnamon security update
2018-07-13 08:51:50
suse
suse
Security update for cinnamon (moderate)
2018-07-28 16:00:16
Security update for cinnamon (moderate)
2018-07-28 16:02:21
nessus
nessus
openSUSE Security Update : cinnamon (openSUSE-2018-768)
2018-07-30 00:00:00
Debian DLA-1420-1 : cinnamon security update
2018-07-16 00:00:00
Fedora 27 : cinnamon (2018-64af4d2108)
2018-07-24 00:00:00
debiancve
debiancve
CVE-2018-13054
2018-07-02 14:29:00
osv
osv
cinnamon - security update
2018-07-13 00:00:00
cinnamon vulnerability
2021-03-15 22:27:19
ubuntucve
ubuntucve
CVE-2018-13054
2018-07-02 00:00:00
cve
cve
CVE-2018-13054
2018-07-02 14:29:00
fedora
fedora
[SECURITY] Fedora 28 Update: cinnamon-3.8.7-1.fc28
2018-07-08 21:45:02
[SECURITY] Fedora 27 Update: cinnamon-3.8.7-1.fc27
2018-07-14 23:36:46
prion
prion
Design/Logic Flaw
2018-07-02 14:29:00
ubuntu
ubuntu
Cinnamon vulnerability
2021-03-15 00:00:00